CVE-2009-1630

The nfs_permission function in fs/nfs/dir.c in the NFS clientimplementation in the Linux kernel 2.6.29.3 and earlier, when atomic_openis available, does not check execute (aka EXEC or MAY_EXEC) permissionbits, which allows local users to bypass permissions and execute files, asdemonstrated by files on an NFSv4 fileserver.